Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/nbTVSQM6ac4_JtcaJAxy0ERVWDQ.roa
File: nbTVSQM6ac4_JtcaJAxy0ERVWDQ.roa (raw, json)
Hash identifier: lw758SQ2+Uhx+OdN+7doBuY1EMbizuNMasgSRzQbFYI=
Subject key identifier: 9D:B4:D5:49:03:3A:69:CE:3F:26:D7:1A:24:0C:72:D0:44:55:58:34
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28584C0D
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/nbTVSQM6ac4_JtcaJAxy0ERVWDQ.roa
Signing time: Sat 01 Jan 2022 16:10:17 +0000
ROA not before: Sat 01 Jan 2022 16:10:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211433
IP address blocks: 92.38.39.0/24 maxlen: 24
92.253.202.0/24 maxlen: 24
93.170.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 676875277 (0x28584c0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9db4d549033a69ce3f26d71a240c72d044555834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6b:0f:e4:e9:52:58:41:b9:52:99:47:f0:aa:
1e:dd:c0:e4:dc:43:a2:02:a0:af:21:5b:19:da:60:
67:74:54:46:3f:ba:6b:78:7b:a7:20:17:87:20:c6:
27:78:46:c6:27:ed:6e:66:0e:ae:4f:37:6b:3a:f5:
a0:bc:71:0f:60:de:47:c5:17:00:90:0b:30:18:63:
29:2e:cd:c1:99:53:5d:b4:f9:23:21:44:f8:a2:3e:
c4:b5:ad:df:41:a8:0d:19:dd:f2:e8:7f:6f:1e:ec:
50:cf:95:4d:27:22:82:6d:e2:68:49:bf:3e:ee:0f:
47:30:7c:f4:40:81:5d:60:b2:04:35:39:4a:39:f8:
9a:32:bd:f1:9e:3f:e2:2a:d1:dc:80:ce:bc:9d:6c:
8b:37:9e:6d:97:55:7c:ec:29:48:35:17:03:f3:b8:
07:05:b0:1f:a4:d4:b1:d3:81:23:83:59:b7:53:75:
da:b3:19:14:5e:8a:23:28:b4:93:ce:9e:07:c5:dc:
45:af:3c:12:4f:d9:b4:55:d5:f5:0a:0d:29:ca:b9:
e7:6e:c5:a0:d1:fe:d2:e1:da:9f:25:55:ef:2a:3b:
a9:1a:48:3e:0f:d5:23:f5:01:14:77:36:d1:fe:da:
dd:38:74:14:b5:57:dc:00:4d:fa:24:47:4a:00:4f:
b2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:B4:D5:49:03:3A:69:CE:3F:26:D7:1A:24:0C:72:D0:44:55:58:34
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/nbTVSQM6ac4_JtcaJAxy0ERVWDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.39.0/24
92.253.202.0/24
93.170.10.0/24
Signature Algorithm: sha256WithRSAEncryption
45:23:ba:bf:85:f3:ca:fb:a1:e6:b6:45:87:80:a2:66:1f:31:
a5:3f:f0:c8:e4:34:7e:f9:7b:a0:7c:1f:a6:98:48:00:2b:45:
05:8a:54:b6:f9:35:e7:31:8d:1c:6b:19:d9:5b:16:00:05:1d:
29:79:e4:04:72:40:3c:a1:6b:a4:15:1c:68:18:87:ea:0e:c2:
f0:bd:c8:af:53:36:84:73:fb:1a:12:61:62:7f:b9:ba:2e:12:
b1:d9:8a:c2:19:08:3e:8e:45:fa:5f:12:ed:04:42:e2:88:a7:
8e:29:c0:47:cd:0e:d8:93:15:f5:0c:da:d8:36:fc:9f:99:5c:
6c:08:33:b3:14:f3:3b:c6:f4:76:3f:9a:00:81:36:26:9a:c9:
a1:94:00:b8:49:6e:20:f4:77:97:61:62:ef:0a:ed:6d:de:98:
e3:7a:d3:d8:1d:f9:8b:5d:80:67:6e:d5:2e:01:53:04:6d:44:
78:aa:ff:d0:0d:6a:31:a0:8a:fd:fa:81:9e:fe:67:78:1c:48:
bc:cc:24:7b:e1:12:7b:29:29:94:5e:1f:4c:8e:0d:d1:f0:aa:
79:77:fb:e1:ca:87:40:35:aa:ca:6b:45:81:b3:9d:4e:f4:20:
5b:b5:b5:cd:bc:40:c6:00:0f:07:29:3d:d8:bd:64:7a:b8:2f:
a3:10:66:9c
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEKFhMDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MTAxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWRiNGQ1NDkwMzNh
NjljZTNmMjZkNzFhMjQwYzcyZDA0NDU1NTgzNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALlrD+TpUlhBuVKZR/CqHt3A5NxDogKgryFbGdpgZ3RURj+6
a3h7pyAXhyDGJ3hGxiftbmYOrk83azr1oLxxD2DeR8UXAJALMBhjKS7NwZlTXbT5
IyFE+KI+xLWt30GoDRnd8uh/bx7sUM+VTScigm3iaEm/Pu4PRzB89ECBXWCyBDU5
Sjn4mjK98Z4/4irR3IDOvJ1sizeebZdVfOwpSDUXA/O4BwWwH6TUsdOBI4NZt1N1
2rMZFF6KIyi0k86eB8XcRa88Ek/ZtFXV9QoNKcq5527FoNH+0uHanyVV7yo7qRpI
Pg/VI/UBFHc20f7a3Th0FLVX3ABN+iRHSgBPsicCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSdtNVJAzppzj8m1xokDHLQRFVYNDAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L25iVFZTUU02YWM0X0p0Y2FKQXh5MEVSVldEUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAFwmJwMEAFz9ygMEAF2qCjANBgkq
hkiG9w0BAQsFAAOCAQEARSO6v4Xzyvuh5rZFh4CiZh8xpT/wyOQ0fvl7oHwfpphI
ACtFBYpUtvk15zGNHGsZ2VsWAAUdKXnkBHJAPKFrpBUcaBiH6g7C8L3Ir1M2hHP7
GhJhYn+5ui4SsdmKwhkIPo5F+l8S7QRC4oinjinAR80O2JMV9Qza2Db8n5lcbAgz
sxTzO8b0dj+aAIE2JprJoZQAuEluIPR3l2Fi7wrtbd6Y43rT2B35i12AZ27VLgFT
BG1EeKr/0A1qMaCK/fqBnv5neBxIvMwke+ESeykplF4fTI4N0fCqeXf74cqHQDWq
ymtFgbOdTvQgW7W1zbxAxgAPByk92L1kergvoxBmnA==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:05:44 2025 by rpki-client